3-hr Virtual Seminar: New Changes to the HIPAA Regulations - What's about to go into effect and what else is on the way

Why Should You Attend:

The HIPAA rules for Privacy and Security of Protected Health Information are undergoing significant expansion, with new requirements, fines, and penalties, and a new enforcement effort. New changes have been finalized and will be going into effect shortly (early 2012), while others have been proposed and will be finalized over the next year or two.

In this 3-hr training we will discuss:

• The new regulations and their effects on usual practices, as well as what policies need to be changed and how.
• The policies and evidence you need to produce if you are audited by the HHS Office of Civil Rights. Now that there is a legislative mandate to audit compliance, and a random audit plan under development, you need to be prepared to respond to audit requests.
• The features that must be available in EHR systems and the questions to ask system vendors will be described.  The processes for responding to requests for copies of electronic records and accountings of disclosures will be related to the regulations that require them.
• The role of business associates who maintain or support your EHR will be discussed, and the extension of the accounting out to them by way of their use of Designated Record Set data will be explored, including potential necessary changes to business associate agreements.

This course will help health information professionals understand what they have to do, and when, and what to keep in mind as they move forward, in order to be prepared for compliance with the new regulations. It will provide a comprehensive look at the changes in the law and prepare attendees for the process of incorporating the changes into how they do business in their facilities.

Learning Objectives:

Attendees will

• Learn how the new regulations change the way individuals have access to their records, and how much they can find out about who has accessed their records
• Find out about how Individuals can now request certain restrictions on disclosures that you must honor.
• Learn about the new requirements for disclosers of health information to apply “minimum necessary” standards.
• Understand the new requirements for Business Associates to comply with HIPAA privacy protections and security safeguards and how BAs are subject to enforcement and penalties directly by HHS.
• Learn how Health Information Exchanges, Regional Health Information Exchanges, and e-Prescribing gateways are now considered to be Business Associates.
• Find out about how new limitations on marketing and fund-raising may change how entities can reach out to individuals.
• Learn all about how new audit and penalty requirements increase the need to make sure you are in compliance before HHS OCR knocks on the door.

Areas Covered in the Seminar:

• Learn how changes to HIPAA came to pass.
• Find out the details of the changes to HIPAA, including new definitions.
• Understand how the changes affect your organization.
• Planning for implementing new requirements.
• Learn how to attain compliance.
• Find out about new penalties and enforcement of HIPA.
• Discover the Changes to HIPAA Practices in the areas of:
  • Business Associates.
  • Breach Notification.
  • Accounting of Disclosures.
  • Restriction of Disclosures.
  • Enforcement, Audits, and Penalties.

Who Will Benefit:

• Information Security Officers
• Risk Managers
• Compliance Officers
• Privacy Officers
• Health Information Managers
• Information Technology Managers
• Medical Office Managers
• Chief Financial Officers
• Systems Managers
• Legal Counsel
• Operations Directors

Medical offices, practice groups, hospitals, academic medical centers, insurers, business associates (shredding, data storage, systems vendors, billing services, etc.) will benefit from this training.

Instructor Profile:

Jim Sheldon-Dean, is the founder and director of compliance services at Lewis Creek Systems, LLC, a Vermont-based consulting firm founded in 1982, providing information privacy and security regulatory compliance services to a variety of health care providers, businesses, universities, small and large hospitals, urban and rural mental health and social service agencies, health insurance plans, and health care business associates. He serves on the HIMSS Information Systems Security Workgroup, has co-chaired the Workgroup for Electronic Data Interchange Privacy and Security Workgroup, and is a recipient of the 2011 WEDI Award of Merit. He is a frequent speaker regarding HIPAA and information privacy and security compliance issues at seminars and conferences, including speaking engagements at AHIMA national and regional conventions and WEDI national conferences, and before the New York Metropolitan Chapter of the Healthcare Financial Management Association, Health Information Management Associations of Virginia, New York City, New York State, and Vermont, the Connecticut Hospital Association, and the Hospital and Health System Association of Pennsylvania.

Sheldon-Dean has nearly 30 years of experience in policy analysis and implementation, business process analysis, information systems and software development. His experience includes leading the development of health care related Web sites; award-winning, best-selling commercial utility software; and mission-critical, fault-tolerant communications satellite control systems. In addition, he has eight years of experience doing hands-on medical work as a Vermont certified volunteer emergency medical technician.

Sheldon-Dean received his B.S. degree, summa cum laude, from the University of Vermont and his master’s degree from the Massachusetts Institute of Technology.

Follow us :